pf blocking nfs
Roland Smith
rsmith at xs4all.nl
Wed Nov 30 16:27:07 GMT 2005
On Wed, Nov 30, 2005 at 06:52:25AM -0600, Will Maier wrote:
> On Tue, Nov 29, 2005 at 09:56:59PM -0600, Aaron P. Martinez wrote:
> > > Aaron P. Martinez wrote:
> [...]
> > I realize i could just accept all udp packets from the NFS server or even
> > just ports 2049, but the underlying question is, why isn't my "keep state"
> > rule handling this.
>
> I don't use pf (or NFS), but UDP is a stateless protocol. I wouldn't
> be surprised if pf couldn't keep track of its state...
It is supposed to work, except for FTP.
Roland
--
R.F.Smith (http://www.xs4all.nl/~rsmith/) Please send e-mail as plain text.
public key: http://www.xs4all.nl/~rsmith/pubkey.txt
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 187 bytes
Desc: not available
Url : http://lists.freebsd.org/pipermail/freebsd-questions/attachments/20051130/b39bb85b/attachment.bin
More information about the freebsd-questions
mailing list